[Cfrg] Fwd: New Version Notification for draft-harkins-pkex-00.txt

Dan Harkins <dharkins@lounge.org> Mon, 12 September 2016 09:19 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 2286912B064 for <cfrg@ietfa.amsl.com>; Mon, 12 Sep 2016 02:19:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.191
X-Spam-Status: No, score=-4.191 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id cxZNABiQ_I9M for <cfrg@ietfa.amsl.com>; Mon, 12 Sep 2016 02:19:02 -0700 (PDT)
Received: from colo.trepanning.net (colo.trepanning.net []) by ietfa.amsl.com (Postfix) with ESMTP id AA66412B042 for <cfrg@irtf.org>; Mon, 12 Sep 2016 02:19:02 -0700 (PDT)
Received: from dhcp-16-207.meeting.verilan.com (unknown []) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by colo.trepanning.net (Postfix) with ESMTPSA id 1957010224062 for <cfrg@irtf.org>; Mon, 12 Sep 2016 02:19:01 -0700 (PDT)
References: <147367129321.14577.4302361405783294005.idtracker@ietfa.amsl.com>
From: Dan Harkins <dharkins@lounge.org>
To: "cfrg@irtf.org" <cfrg@irtf.org>
X-Forwarded-Message-Id: <147367129321.14577.4302361405783294005.idtracker@ietfa.amsl.com>
Message-ID: <3e9341e6-d826-a028-df40-a4e0dff98635@lounge.org>
Date: Mon, 12 Sep 2016 02:19:00 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:45.0) Gecko/20100101 Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <147367129321.14577.4302361405783294005.idtracker@ietfa.amsl.com>
Content-Type: multipart/alternative; boundary="------------5AD7654AA6AD0D865F9D0488"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/F202vEKKC4u7KlAh19EvVpfCVcM>
Subject: [Cfrg] Fwd: New Version Notification for draft-harkins-pkex-00.txt
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Sep 2016 09:19:04 -0000


   In the current PAKE requirements draft there is an application
described for which we have no candidate protocols. Namely,

  "In addition to key retrieval from escrow, there is also the variant
   of two parties exchanging public keys using a PAKE in lieu of
   certificates.  In this variant, public keys can be encrypted using a
   password.  Authentication key distribution can be performed because
   each side knows the private key associated with its unencrypted
   public key and can also decrypt the peer's public key.  This
   technique can be used to transform a short, one-time code into a
   long-term public key."

So I have written an I-D that proposes just such a protocol. I
solicit review and criticism.



-------- Forwarded Message --------
A new version of I-D, draft-harkins-pkex-00.txt

has been successfully submitted by Dan Harkins and posted to the
IETF repository.

Name:		draft-harkins-pkex
Revision:	00
Title:		PKEX
Document date:	2016-09-12
Group:		Individual Submission
Pages:		9
URL:            https://www.ietf.org/internet-drafts/draft-harkins-pkex-00.txt
Status:         https://datatracker.ietf.org/doc/draft-harkins-pkex/
Htmlized:       https://tools.ietf.org/html/draft-harkins-pkex-00

    This memo describes a password-authenticated protocol to allow two
    devices to exchange "raw" (uncertified) public keys and establish
    trust that the keys belong to their respective identities.


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat